A method and a system for preserving privacy of a dataset are provided. In the method, a k-anonymity value with respect to a sensitive data field is determined according to at least one first quasi-identifier. data entries in each group have the same value in the one or more fields of the first quasi-identifier and data entries in different groups have different values in the one or more fields of the first quasi-identifier. A first group and a second group among the plurality of groups are determined according to the reference number kr, where the first group and the second group are merged into a merging group. The number of data entries in the merging group is not less than a reference number kr. One or more fields of at least one first quasi-identifier is masked for the merging group.
|
1. A method for preserving privacy of a dataset, where the dataset has at least a sensitive data field and one or more fields of at least one first quasi-identifier, the method comprising:
determining a k-anonymity value K with respect to the sensitive data field according to the at least one first quasi-identifier;
determining to adopt the at least one first quasi-identifier to categorize the dataset into a plurality of groups, if the k-anonymity value K is less than a reference number kr, wherein data entries in each of the plurality of groups have the same value in the one or more fields of at least one first quasi-identifier and data entries in different groups of the plurality of groups have different values in the one or more fields of at least one first quasi-identifier;
determining the number of data entries in each of the plurality of groups;
determining a first group among the plurality of groups, wherein the number of data entries, N1, in the first group is less than the reference number kr;
determining a second group among the plurality of groups, whereby when the first group and the second group are merged into a merging group, the number of data entries, Nm, in the merging group is not less than the reference number kr; and
masking the one or more fields of at least one first quasi-identifier for the merging group.
2. The method for preserving privacy of a dataset as claimed in
determining the one or more fields to be masked of at least one first quasi-identifier for the merging group, wherein prior to masking, the values of the fields being masked of the first group are distinct from the values of the same fields being masked of the second group.
3. The method for preserving privacy of a dataset as claimed in
4. The method for preserving privacy of a dataset as claimed in
allowing users to determine the value of the reference number kr.
5. The method for preserving privacy of a dataset as claimed in
determining the second group, wherein Vm is the minimum value.
6. The method for preserving privacy of a dataset as claimed in
allowing users to determine the value of the reference number Lr.
7. The method for preserving privacy of a dataset as claimed in
determining a l-diversity value L with respect to the sensitive data field according to the at least one first quasi-identifier;
the step of determining to adopt the at least one first quasi-identifier to categorize the dataset into the plurality of groups further comprises: determining to adopt the at least one first quasi-identifier to categorize the dataset into a plurality of groups, if the l-diversity value L is less than a reference number Lr;
the step of determining the number of the data entries in each of the plurality of groups further comprises: determining the number of values of the sensitive data field of the data entries in each group;
the step of determining the first group among the plurality of groups further comprises: determining the first group among the plurality of groups, wherein the number of values of the sensitive data field of the data entries, V1, in the first group is less than the reference number Lr;
the step of determining the second group among the plurality of groups further comprises: determining the second group, whereby the number of values of the sensitive data field of the data entries, Vm, in the merging group is not less than the reference number Lr.
8. The method for preserving privacy of a dataset as claimed in
determining the second group, wherein Nm is the minimum value.
9. The method for preserving privacy of a dataset as claimed in
determining the second group, whereby the merging group complies with a set of criteria provided by users.
10. The method for preserving privacy of a dataset as claimed in
the step proceeds by decision tree algorithm;
the step of determining the second group among the plurality of groups further comprises: determining the second group, wherein a distance of a path of the first group and a distance of a path of the second group according to the decision tree are minimized.
11. A product of computer programs stored in a non-transitory computer accessible medium, which comprises a set of computer readable programs for embodying the methods as claimed in
12. A computer system, which comprises:
a host, which comprises:
a bus system;
a memory module connecting to the bus system, wherein a set of computer executable instructions is included; and
a processing unit connecting to the bus system, where the processing unit executes the set of computer executable instructions for embodying methods as claimed in
|
This application claims the priority benefit of Taiwan application serial no. 101103156, filed on Jan. 31, 2012. The entirety of the above-mentioned patent application is hereby incorporated by reference herein and made a part of this specification.
The disclosure relates to a method and a system for preserving privacy of a dataset.
Based on purposes of academic researches or of commerce actions, techniques of data mining have been widely applied to fields of medical record analysis and consumer behavior analysis. Generally, before the procedures of data mining of a dataset, for preserving privacy of the dataset being manipulated, a process to anonymize the field of names of individuals contained in the dataset is performed. However, by means of comparing the anonymized dataset with related dataset, as demonstrated in
Conventional methods used to deal with the issue of invasion of privacy described above need intervention of humans, with knowledge about the purposes and the manners of the procedures of data mining and the further analysis on the dataset, to determine relative and irrelative fields respectively and to keep the relative fields while masking the irrelative fields in respect of the subsequent process of data mining and analysis. In practice, however, it is almost impossible to know well in advance about the purposes and the manners being performed on the dataset, thus conventional methods need improvement in this regard.
There are some related literatures and technologies for cross-network authentication. For example, a literature provides a system and a method for automated determination of quasi-identifiers for sensitive data fields in a data set, which is incorporated herein by reference herewith. However, Agrawal et al. do not provide a method for masking one or more fields of quasi-identifiers.
Some literatures also introduce that the robustness of preservation of privacy can be determined according to the k-anonymity or l-diversity, or both, of the dataset. One way to increase the robustness of preservation of privacy of a dataset is to mask as many fields as possible. The more fields are masked, however, the less accurate the dataset becomes, and the less data utility as a result.
Conventional methods and prior arts mentioned above do not provide a flexible manner in respect of users' needs to preserve the privacy of a dataset appropriately while keeping the dataset accurate.
In an embodiment of the disclosure, a method for preserving privacy of a dataset is provided, where the dataset has at least a sensitive data field and one or more fields of at least one first quasi-identifier. In the method, a k-anonymity value K with respect to the sensitive data field is determined according to the at least one first quasi-identifier. It is determined to adopt all or some of the at least one first quasi-identifier to categorize the dataset into a plurality of groups, if the k-anonymity value K is less than a reference number Kr. Data entries in each group have the same value in the one or more fields of at least one first quasi-identifier and data entries in different groups have different values in the one or more fields of at least one first quasi-identifier. The number of data entries in each group is determined. A first group among the plurality of groups is determined, where the number of data entries, N1, in the first group is less than the reference number Kr. A second group among the plurality of groups is determined, where when the first group and the second group are merged into a merging group, the number of data entries, Nm, in the merging group is not less than the reference number Kr. One or more fields of at least one first quasi-identifier is/are masked for the merging group.
In an embodiment of the disclosure, a product of computer programs stored in a computer accessible medium is provided. The product includes a set of computer readable programs for executing the method proposed above on one or more computer systems.
In an embodiment of the disclosure, a computer system is provided. The computer system includes a memory module and a processing unit, where a set of computer executable instructions are stored in the memory module, and the processing unit execute the set of computer executable instructions for proceeding the method proposed above.
It does not mean that all the features and advantages which can be carried into execution of the disclosure are put together in any single embodiment of the disclosure. The expressions and description of the features and advantages of the disclosure herein indicate the combination of all the features, advantages and properties revealed in at least one embodiment of the disclosure. Therefore, the expressions and description of the features and advantages of the disclosure in this specification may relate to the same embodiment, while it is not necessary so.
In order to make the aforementioned and other features and advantages of the disclosure comprehensible, several exemplary embodiments accompanied with figures are described in detail below.
The accompanying drawings are included to provide a further understanding of the disclosure, and are incorporated in and constitute a part of this specification. The drawings illustrate embodiments of the disclosure and, together with the description, serve to explain the principles of the disclosure.
In this specification, “an embodiment” or the similar expressions represent the fact that the combination of the particular features, structures, and properties in the embodiment are included in at least one embodiment of the disclosure. Therefore, in this specification, “in an embodiment” or the similar expressions do not necessarily refer to a same embodiment.
Those who skilled in the art will know that the disclosure can be embodied as a computer system, as a method, or as a computer accessible media as a product of computer programs. Therefore, the disclosure can be embodied as many forms such as pure hardware embodiment, pure software embodiment which comprises firmware, terminate-and-stay-resident programs, and micro-code programs, as well as embodiment of combination of hardware and software, which will be referred to “circuits”, “modules”, or “systems” in this specification.
One or more combination of compute applicable or computer accessible media can be utilized. Computer applicable or computer accessible media can be, for example, electrical, magnetic, optical, electromagnetic, infrared, or semiconducting systems, devices, or apparatuses. Moreover, embodiments of computer accessible media comprise but are not limited to following: electrical connections composed of one or more wires, portable computer discs, hard drives, random access memory (RAM), read-only memory (ROM), erasable programmable read-only memory (EPROM), flash memory, optical fibers, compact disc read-only memory (CD-ROM), optical storage apparatuses, transmission media such as Internet or intranet, or magneto storage. It should be noted that computer applicable or computer readable media can be hard copies on which source code of a computer program can be printed, and then the printings can be converted into electrical forms. For example, by using an optical scanner to scan the hard copy, the content contained in that hard copy can be compiled, interpreted, or processed by any manner to store into computer memory modules. In this specification, computer applicable or computer readable media can be any form of media used to preserve, store, deliver, propagate, or transport computer programs or source codes, for connected instruction repertoire, devices or apparatuses to process. Computer applicable media comprise dada signals, with baseband or carrier wave, storing computer applicable programs or source codes. Transmission of computer applicable programs or source codes may be in any appropriate media, including but not limited to wire, wireless, optical fibres, radio frequency (RF).
The computer program and its source code used to perform the disclosure can be implemented with one or more programming languages comprising object-oriented programming languages such as Java, Smalltalk, C++, and the like, as well as traditional procedural programming languages such as C or other similar programming languages.
The description about the disclosure below refers to the systems, apparatuses, methods and the flowcharts and/or block diagrams of the embodiments of the disclosure. Any one or more of the flowcharts and/or any block in the block diagrams, and any combination of the flowcharts and blocks in the block diagrams can be implemented by instructions of computer programs. These instructions can be executed by processors of common computers or specific computers, or by any form of machines with programmable data processing units, in order to perform the functions or operations described in the flowcharts and/or block diagrams.
These computer programs can be stored in computer readable media in order to direct computers or machines with programmable data processing units to perform specific functions. These computer programs comprise a finished product, in which the instructions perform the functions or operations described in the flowcharts and/or block diagrams
Computer programs can be loaded onto computers or onto any form of machines with programmable data processing units, in order to perform a series of operation steps by the computer or programmable data processing unit, wherein the computer or programmable data processing unit produces computer execution procedures to achieve the functions or operations described in the flowcharts and/or block diagrams.
The disclosure is directed to a method and a system for preserving privacy of a dataset while keep the dataset accurate.
In one of some exemplary embodiments of the disclosure, a method is provided for taking the robustness of preservation of privacy, that is, k-anonymity or l-diversity, or both, imported by user as criteria for data clustering, and then determining data fields for masking.
Refer to
To protect the anonymity of the entities of a dataset when releases microdata, data holders often remove or encrypt explicit identifiers, such as names and social security numbers. De-identifying data, however, provide no guarantee of anonymity. Released information often contains other data, such as race, birth date, sex, and ZIP codes, which can be linked to publicly available information to re-identify respondents and to infer information that was not intended for release. One of the emerging concepts in microdata protection is k-anonymity, which has been recently proposed as a property that captures the protection of a microdata table with respect to possible re-identification of the respondents to which the data refer. The k-anonymity demands that every tuple in the microdata table released be indistinguishably related to no fewer than k respondents. The related information about k-anonymity may be referred to some technical literatures. One of literatures illustrates the original k-anonymity proposal and its enforcement via generalization and suppression as means to protect respondents' identities while releasing truthful information. It also discusses different ways in which generalization and suppression can be applied, thus defining a possible taxonomy for k-anonymity and discussed the main proposals for solving the k-anonymity problems in the different models. It also illustrates further studies building on the k-anonymity concept to safeguard privacy. All disclosures are incorporated herein by reference herewith. All of the aforesaid technical literatures are incorporated herein by reference therewith and made a part of specification.
The related information about l-diversity may be referred to some technical literatures, One of literatures introduces the “l-diversity” that provides privacy even when the data publisher does not know what kind of knowledge is possessed by the adversary. The main idea behind l-diversity is the requirement that the values of the sensitive attributes are well-represented in each group. It shows that existing algorithms for k-anonymity may be adapted to compute l-diverse tables, and in an experimental evaluation it shows that l-diversity is practical and can be implemented efficiently. All of the aforesaid technical literatures are incorporated herein by reference therewith and made a part of specification.
In one of some exemplary embodiments of the disclosure, a method is provided for clustering data efficiently and flexibly in a dataset, particularly clustering data by decision-tree algorithm.
Moreover,
The server host 110 may be a common general purpose computer, a special purpose computer, a high-level workstation, a mainframe, such as IBM System X, Blade Center, or eServer. The server host 110 may have the capability of network communication, which can be implemented in any form of connections, including connections of local area network (LAN) or wide area network (WAN), connections via Internet provider to connect to Internet by dial-up, or other wire or wireless connections. Moreover, other hardware and software components such as additional computer systems, routers, firewalls, and so forth, although not depicted herein, may be included in the network.
It is noticed that, in the disclosure, a plurality of functional units are labelled as functional blocks or modules to emphasize the independence of implementation. Functional blocks or modules, for example, may be embodied as hardware circuits comprising customized VLSI or gate circuits, such as off-the-shelf semiconductors of logic chips, transistors, or other discrete components. Modules may be implemented in programmable hardware components, such as field programmable gate arrays (FPGA), programmable logic arrays (PLA), programmable logic devices (PLD), or other similar components. Besides, modules may be implemented in some software executed by all kinds of processors. Identification modules with executable codes comprise one or more physical or logical blocks, which may form objects, procedures, or functions. However, executable codes of the identification modules may not necessarily be contiguous to each other in a physical relationship; rather they can comprise different instructions in different addresses. Logically, the instructions altogether constitute the one or more modules and accomplish the purposes of the modules.
An executable module may comprise a single instruction or a plurality of instructions distributed in a plurality code segments, in a plurality of programs, or in a plurality of memory devices. Similarly, operation data in the identification module may be in any appropriate form implemented in any appropriate type of data structure, and can be collected as a single dataset, or distributed in a plurality of locations in the same or in different storage devices. In addition, the operation data may partially exist at least temporarily in a form of electrical signals.
In step 500, the server host 110 receives a dataset and stores the dataset into the database DB. More appropriately, the name field in the dataset may be anonymized before further manipulation, as illustrated in
In step 502, the server host 110 receives the reference value Kr for the k-anonymity, and the reference value Lr of the l-diversity, respectively, provided by the user. In the embodiment, Kr is 2 and Lr is 2, as determined by the user. According to the given values of Kr and Lr, the server host 110 judges that K (which is 1) is less than the reference value Kr (which is 2), and L (which is 1) is less than the reference value Lr (which is 2). Thus, the process goes to step 504.
In step 504, according to the given quasi-identifiers, “Gender”, “Age”, “ZIP Code”, and “BMI”, as illustrated in the embodiment, the dataset in
In step 506, two or more of the groups SP1-SP8SP1-SP8 from step 504 are merged.
As illustrated in
Moreover, if only the k-anonymity of the dataset is considered in the embodiment, the numbers N3, N6, N7 and N8 of entries of the groups SP3, SP6, SP7, and SP8, are all 1, respectively, which are less than the reference value of k-anonymity (Kr=2, for example), provided by users. Thus, the groups SP3, SP6, SP7, and SP8 may be merged with other groups to obtain a greater number of entries, Nm. The merging group increases the value of k-anonymity to conform to the reference value of k-anonymity Kr.
To ensure a higher degree of robustness of preservation of privacy, the l-diversity may be taken into consideration with the k-anonymity. In the embodiment, the numbers of value types of the sensitive data field “Disease” V1˜V8 of the groups SP1-SP8 are all 1, which are less than the reference value of l-diversity, Lr(2), provided by users in step 502. Thus these groups may be merged to obtain a greater number of value types of the sensitive data field “Disease”, V. The greater number Vm may increase the value of l-diversity to conform to the reference value of l-diversity Lr.
One of some embodiments is provided below to illustrate the case that both k-anonymity and l-diversity are taken into consideration. In the embodiment, the numbers of value types of the sensitive data field Disease of groups SP1-SP8 are all less than the reference value of l-diversity Lr, thus each of the groups SP1-SP8 needs being merged with some other groups to promote or increase the l-diversity. On the contrary, if only k-anonymity is concerned, then only the groups SP3, SP6, SP7, and SP8 need to be merged.
After two or more groups are merged into one merging group, one or more quasi-identifiers would be masked based on the purpose of equivalence. To avoid damaging the data utility of the dataset, the number of entries and the number of value types of the field Disease are kept as less as possible. In the embodiment, two or more groups are merged into one merging group based on the requirement that the number of entries Nm and/or the number of value types of the field Disease Vm are minimized while are not less than the corresponding reference values from users. In another embodiment, two or more groups are merged into one merging group based on the requirement that the distance of path of each group of the decision tree are minimized. In other embodiments, number of entries and the distance of path may be taken into consideration simultaneously, or users can provide customized criteria for merging, such as assigning different weights to the number of entries and to distance of path, other parameters, or providing the precedence or sequence of merging of each group.
For illustration, the groups SP1 and SP2 are merged into a merging group M1, and the groups SP3, SP4, and SP5 are merged into another merging group M2, while the groups SP6, SP7, and SP8 are merged into a further merging group M3. The numbers of entries of merging groups M1, M2, and M3 are [4, 6, 3], respectively, and are not less than the k-anonymity Kr (2) provided by users in step 502. The numbers of value types of the field Disease of merging groups M1, M2, and M3 are [2, 3, 2], respectively, and are not less than the l-diversity Lr (2) provided by users in step 502.
If the number of entries or the number of value types of the field Disease, or both, of the merging group is still less than the reference value, then the merging group may be further merged with other groups until the number of entries and the number of value types of the field Disease of corresponding groups are not less than the reference values Kr and Lr, respectively.
Although both k-anonymity and l-diversity are taken into consideration in aforementioned embodiment, those who skilled in the art should be able to handle the cases with which only k-anonymity is concerned.
In step 508, it is determined that the quasi-identifiers being selected to be masked in each merging group M1-M3, respectively. The selected quasi-identifiers being masked are required to be used to distinguish the basic groups forming the merging groups M1-M3 from at least two or more of the groups SP1-SP8. For example, the merging group M1 is composed of two basic groups SP1 and SP2, and the field “Gender” can be used to distinguish SP1 from SP2 since SP1 and SP2 have different values in “Gender”, therefore “Gender” is the candidate being masked. For the merging group M2, “Gender” and “ZIP Code” together distinguishes the basic groups SP3, SP4, and SP5 from each other, thus “Gender” and “ZIP Code” are the fields capable of being selected to be masked. Merging group M3 is composed of SP6, SP7, and SP8, and the three basic groups have different values of the combination of “ZIP Code” and “BMI”, as a result, “ZIP Code” and “BMI” are the fields being selected to be masked.
In step 510, the quasi-identifiers being selected or determined at step 508 are masked. Methods used to mask the quasi-identifiers are classified into two categories: perturbative and non-perturbative, which are known very well by those who skilled in the art. It is not limited to adopt the same masking method for different merging group or for different quasi-identifiers in this disclosure.
It will be apparent to those skilled in the art that various modifications and variations can be made to the structure of the disclosure without departing from the scope or spirit of the disclosure. In view of the foregoing, it is intended that the disclosure cover modifications and variations of this disclosure provided they fall within the scope of the following claims and their equivalents.
Chen, Ya-Ling, Lan, Ci-Wei, Hsiao, Jen-Hao, Tseng, Li-Feng, Chen, Yi-Hui, Grandison, Tyrone W
Patent | Priority | Assignee | Title |
10095883, | Jul 22 2016 | WORKDAY, INC | Method/system for the online identification and blocking of privacy vulnerabilities in data streams |
10333899, | Nov 26 2014 | LexisNexis, a division of Reed Elsevier Inc. | Systems and methods for implementing a privacy firewall |
10380088, | May 22 2015 | International Business Machines Corporation | Detecting quasi-identifiers in datasets |
10546043, | Jul 16 2018 | HERE Global B.V. | Triangulation for K-anonymity in location trajectory data |
10663305, | Jul 16 2018 | HERE Global B.V. | Map matched aggregation for K-anonymity in trajectory data |
10897452, | Nov 26 2014 | RELX INC. | Systems and methods for implementing a privacy firewall |
10936750, | Mar 01 2018 | WORKDAY, INC | Data de-identification across different data sources using a common data model |
10936752, | Mar 01 2018 | WORKDAY, INC | Data de-identification across different data sources using a common data model |
11030340, | Jul 22 2016 | WORKDAY, INC | Method/system for the online identification and blocking of privacy vulnerabilities in data streams |
11120163, | Nov 14 2014 | Oracle International Corporation | Associating anonymous information with personally identifiable information in a non-identifiable manner |
11269834, | May 22 2015 | International Business Machines Corporation | Detecting quasi-identifiers in datasets |
11456996, | Dec 10 2019 | International Business Machines Corporation | Attribute-based quasi-identifier discovery |
11562168, | Jul 16 2018 | HERE Global B.V. | Clustering for K-anonymity in location trajectory data |
11580249, | Feb 10 2021 | Bank of America Corporation | System for implementing multi-dimensional data obfuscation |
11907268, | Feb 10 2021 | Bank of America Corporation | System for identification of obfuscated electronic data through placeholder indicators |
9760718, | Sep 18 2015 | International Business Machines Corporation | Utility-aware anonymization of sequential and location datasets |
9870381, | May 22 2015 | International Business Machines Corporation | Detecting quasi-identifiers in datasets |
Patent | Priority | Assignee | Title |
7877398, | Nov 19 2007 | International Business Machines Corporation | Masking related sensitive data in groups |
8112422, | Oct 27 2008 | AT&T Intellectual Property I, L.P. | Computer systems, methods and computer program products for data anonymization for aggregate query answering |
8326849, | Jun 25 2009 | PRIVACY ANALYTICS INC | System and method for optimizing the de-identification of data sets |
8544104, | May 10 2010 | International Business Machines Corporation | Enforcement of data privacy to maintain obfuscation of certain data |
20020169793, | |||
20110119661, | |||
20120197915, |
Executed on | Assignor | Assignee | Conveyance | Frame | Reel | Doc |
Jul 27 2012 | CHEN, YI-HUI | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | TSENG, LI-FENG | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | HSIAO, JEN-HAO | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | GRANDISON, TYRONE W | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | LAN, CI-WEI | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | CHEN, YA-LING | International Business Machines Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | CHEN, YI-HUI | Industrial Technology Research Institute | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | TSENG, LI-FENG | Industrial Technology Research Institute | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | HSIAO, JEN-HAO | Industrial Technology Research Institute | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | GRANDISON, TYRONE W | Industrial Technology Research Institute | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | LAN, CI-WEI | Industrial Technology Research Institute | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Jul 27 2012 | CHEN, YA-LING | Industrial Technology Research Institute | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 028809 | /0298 | |
Aug 16 2012 | International Business Machines Corporation | (assignment on the face of the patent) | / | |||
Aug 16 2012 | Industrial Technology Research Institute | (assignment on the face of the patent) | / |
Date | Maintenance Fee Events |
Feb 19 2018 | M1551: Payment of Maintenance Fee, 4th Year, Large Entity. |
Feb 21 2022 | M1552: Payment of Maintenance Fee, 8th Year, Large Entity. |
Date | Maintenance Schedule |
Aug 19 2017 | 4 years fee payment window open |
Feb 19 2018 | 6 months grace period start (w surcharge) |
Aug 19 2018 | patent expiry (for year 4) |
Aug 19 2020 | 2 years to revive unintentionally abandoned end. (for year 4) |
Aug 19 2021 | 8 years fee payment window open |
Feb 19 2022 | 6 months grace period start (w surcharge) |
Aug 19 2022 | patent expiry (for year 8) |
Aug 19 2024 | 2 years to revive unintentionally abandoned end. (for year 8) |
Aug 19 2025 | 12 years fee payment window open |
Feb 19 2026 | 6 months grace period start (w surcharge) |
Aug 19 2026 | patent expiry (for year 12) |
Aug 19 2028 | 2 years to revive unintentionally abandoned end. (for year 12) |